Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/cgGzOSzAzy8y8pSjDuxbpXRrKnI.roa
File: cgGzOSzAzy8y8pSjDuxbpXRrKnI.roa (raw, json)
Hash identifier: fmbt4cZnpMITNsBJXSL5ZDQYH3NyfLeMWpHa8YXjNbs=
Subject key identifier: 72:01:B3:39:2C:C0:CF:2F:32:F2:94:A3:0E:EC:5B:A5:74:6B:2A:72
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 0FEE1F3E
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/cgGzOSzAzy8y8pSjDuxbpXRrKnI.roa
Signing time: Sat 01 Jan 2022 14:59:49 +0000
ROA not before: Sat 01 Jan 2022 14:59:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208751
IP address blocks: 2a06:e881:6700::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 267263806 (0xfee1f3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 1 14:59:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7201b3392cc0cf2f32f294a30eec5ba5746b2a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:9f:bc:c6:2a:6e:c5:93:7b:87:27:22:0b:24:
e3:fe:3f:00:94:02:79:cd:cc:7c:3c:87:92:a6:51:
de:70:0f:47:99:5e:17:e8:82:a5:38:dc:93:c3:57:
56:e3:a0:00:53:a5:3d:07:4b:a5:5b:e5:9b:5d:b8:
d6:c1:4d:1f:d7:4b:6d:56:29:08:bc:5d:d8:32:6c:
16:69:2c:83:02:4a:f2:99:cb:f9:9c:d6:f3:4b:45:
7d:f1:c5:6d:e0:e0:ce:23:3a:46:aa:de:6f:93:72:
5b:7d:ea:33:74:63:b4:c7:cf:ba:44:8a:27:fe:a9:
05:50:60:d8:28:10:ba:ba:d0:2e:d0:c5:1b:66:e2:
21:08:23:a4:1e:13:58:e8:f6:43:59:38:ac:09:0a:
a2:7a:60:24:eb:c9:e0:83:97:b4:85:29:c7:1c:3d:
71:a1:05:b1:c7:dc:a0:b9:07:63:ee:3f:b8:d2:18:
ef:f0:dd:24:b3:cb:55:f3:e8:7f:88:e1:24:9c:79:
6a:ba:0d:fd:86:4b:d8:d5:61:6e:33:ae:8d:58:c7:
a1:08:21:f6:9e:44:f1:fe:d3:e0:9a:79:de:22:d3:
ea:14:98:72:72:9c:41:4c:a9:cd:e3:b9:bd:68:b8:
d3:08:b7:2d:48:60:e6:a7:c5:dd:2a:4b:79:8f:25:
b6:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:01:B3:39:2C:C0:CF:2F:32:F2:94:A3:0E:EC:5B:A5:74:6B:2A:72
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/cgGzOSzAzy8y8pSjDuxbpXRrKnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:6700::/44
Signature Algorithm: sha256WithRSAEncryption
07:0d:77:c1:ff:d4:10:ed:79:23:ec:b1:60:35:a8:87:8c:1f:
7c:e6:09:ec:4e:87:bc:6a:80:e2:2c:c9:24:cc:38:1b:5a:27:
4b:f5:20:a7:72:b6:66:16:14:1b:38:4d:92:a8:0a:ec:77:f4:
40:8b:fa:bf:23:41:75:31:21:3d:6c:56:e8:76:fa:40:b9:1b:
82:a3:4e:91:b0:bc:50:11:d9:58:0f:4f:f0:3a:2c:cb:6e:0c:
72:77:02:77:c7:d9:f5:04:02:60:a4:a7:46:1f:26:08:3c:8d:
61:5e:71:1b:2e:51:c2:12:b7:ce:a0:3a:7b:f9:02:53:74:a5:
8b:cd:f9:9e:b1:9e:b4:6c:8d:8a:f4:2a:1e:5b:81:2d:a1:77:
20:ac:33:24:d7:1f:6e:8b:fb:47:8b:be:37:d4:29:d0:5e:05:
f3:8c:b6:a4:15:ff:bc:6d:f5:ed:3a:99:b1:6d:d0:f5:58:5a:
f3:a0:58:bc:ed:bb:a6:e5:d5:c5:8e:6a:77:ed:a0:56:9d:a7:
36:6d:2c:d2:0c:b4:68:0b:9d:90:6f:ec:a0:b7:d1:8e:e0:8f:
f0:a6:f2:70:5a:31:52:f7:a1:e1:ed:91:b3:e6:32:66:03:00:
5c:f8:49:33:fd:5e:17:19:98:64:47:68:59:43:7a:52:93:ab:
3e:2b:37:44
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIED+4fPjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ODA3NGI0MTllYWQ0Y2VmZWEyZjJhZDJjMjU5ZDk3OGM1ZWQ3OTU0MB4XDTIyMDEw
MTE0NTk0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzIwMWIzMzkyY2Mw
Y2YyZjMyZjI5NGEzMGVlYzViYTU3NDZiMmE3MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAO2fvMYqbsWTe4cnIgsk4/4/AJQCec3MfDyHkqZR3nAPR5le
F+iCpTjck8NXVuOgAFOlPQdLpVvlm1241sFNH9dLbVYpCLxd2DJsFmksgwJK8pnL
+ZzW80tFffHFbeDgziM6Rqreb5NyW33qM3RjtMfPukSKJ/6pBVBg2CgQurrQLtDF
G2biIQgjpB4TWOj2Q1k4rAkKonpgJOvJ4IOXtIUpxxw9caEFscfcoLkHY+4/uNIY
7/DdJLPLVfPof4jhJJx5aroN/YZL2NVhbjOujVjHoQgh9p5E8f7T4Jp53iLT6hSY
cnKcQUypzeO5vWi40wi3LUhg5qfF3SpLeY8ltvcCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBRyAbM5LMDPLzLylKMO7FuldGsqcjAfBgNVHSMEGDAWgBS4B0tBnq1M7+ov
KtLCWdl4xe15VDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VBZExRWjZ0VE9fcUx5clN3bG5aZU1YdGVWUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWIvMWU0M2U0LWQwNmUtNGE1NS1iZGI2LTNkOTFlZGU1YjJiMS8x
L2NnR3pPU3pBenk4eThwU2pEdXhicFhScktuSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWIv
MWU0M2U0LWQwNmUtNGE1NS1iZGI2LTNkOTFlZGU1YjJiMS8xL3VBZExRWjZ0VE9f
cUx5clN3bG5aZU1YdGVWUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoG6IFnADANBgkqhkiG9w0BAQsF
AAOCAQEABw13wf/UEO15I+yxYDWoh4wffOYJ7E6HvGqA4izJJMw4G1onS/Ugp3K2
ZhYUGzhNkqgK7Hf0QIv6vyNBdTEhPWxW6Hb6QLkbgqNOkbC8UBHZWA9P8Dosy24M
cncCd8fZ9QQCYKSnRh8mCDyNYV5xGy5RwhK3zqA6e/kCU3Sli835nrGetGyNivQq
HluBLaF3IKwzJNcfbov7R4u+N9Qp0F4F84y2pBX/vG317TqZsW3Q9Vha86BYvO27
puXVxY5qd+2gVp2nNm0s0gy0aAudkG/soLfRjuCP8KbycFoxUveh4e2Rs+YyZgMA
XPhJM/1eFxmYZEdoWUN6UpOrPis3RA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:55 2023 by rpki-client on console-fra.rpki-client.org